Category Archives: security

Seagate Hard disks of 3 Terabyte volume used to be very attractive HDDs (storage) option when they were launched on the market.
Many people and sysadmins have already bought such ones and some sysadmins and company customers that already choose Seagate are badly suffering because of that and thus it is good to warn others to stay away from3TB SeaGate Hard Disks.

Backblaze (Online Backup) company is one of the most severely affected companies that made the choise to use Seagate as a storage devices on their Cloud inter-connected servers. They used 41 213 hard disks in their computing Data Center as of 31 December 2014.

In their disk arrays they have used Western Digital (now part of Western DIgital) and of course pitily Seagate.

The problematic hard disks that they faced issues with are Seagate Barracuda 7200.14 3TB sized is the hard disks with most failures within Backblaze for whole 2014 about 40% percents!! of all 3TB hard disks the company had break up, died or had to be replaced because of I/O disk failures and bad-sectors.

It is not exactly clear what is the reason for such a high failures but Seagate were leaders in failures followed by Western Digital and HGTX (the ex-Hitachi).

Just for a comparisonBackblaze reports that 4 Tetabyte hard disks which they bought last year had failures, very rarely and in general the company is quite happy with Seagate / WD disks of 4 TB volume.

Seagate Barracuda 7200.14 3TB diskdrives mounted on their servers are the one who had most hardware issues and the company recommends anyone willing to buy a new HDD to stay away from this volume.

Western Digitals 3TB HDDs had 10% of failure rate, HGTS had only 2.6% and Seagate exact failed HDDs were approximately 43.1% with a HDD failure!!

No severe hardware HDD failures are reported with 4 TB hdds.
4TB Seagate HDDs gave 5% of defects, followed by WD with 3-4% and HGTS with only 1.4%.

Statistics clearly shows it if you want to buy a big storage for your big data / Web / FTP / Dropbox (Cloud) hosting Company as of time of writting 26.01.2015 it is better equip your Big Storage Array racks with HGTS branded hard drives.

Everyone knows about disclosures of Edward Snowden against hidden surveillance (spy) program PRISM that is taking place all across the Internet, messages, mobile phones and cameras are being logged and profiles of people are being created.

For anyone involved into IT field (Geeks, Hackers, Programmers) it was clear that such a mass spy is being conducted this is why many hackers like Richard Stallman decided to not use mobile phones and non-free software (which is another Troyan horse) for America and world governments.Every intelligent person has already understood that the reason for this surveillance is the creation of online electronic file of every person on earth.

Most likely Big companies like Microsoft, Google, Facebook, Yahoo all were financed by National Security Agency(NSA) in order to be able to collect as much information as possible for global citizens.Modern technology was purposely invented and spread as a mean to not only track human behaviors but also to speed-up Globalism and fostering of a global society.

We already know that anyone having an Android smartphone is a holding a personal tracking and reporting device to Google, anyone using Youtube is also reporting on his watching preferences to.
Anyone with Android if logged to Google Play often unknowingly shares and imports his pictures into Google Picasa.

Anyone having a Gmail Mail account shares his personal email correspondence with the Giant. Google books reports on us, Google even keeps tracks of our searches (if we’re logged in to some type of Google Account which until recently become Universal (e.g. One login for all). It is rather scary to know exactly how much google knows about every citizen on planet who uses the internet …

There are already Two Google interfaces which allows to see in a very basic way some of the things Google knows about us.
And even the little to see raises a serious concern about our personal privacy …

This tool allows you to test your web applications to test availability concerns from Layer7 DoS HTTP GET and HTTP POST denial of service attacks.

Slow HTTP attack was covered in the OWASP AppSec DC presentation by Wong Onn Chee and Tom Brennan. In this attack type a client completes the request headers phase however it sends the request body (post payload) very slowly (e.g. – 1 byte/110sec). When you consider that, by default, Apache will accept a request body of up to 2GB in size, you can can see how effective this attack can be.

Pyloris is an inspired python implitmentation of slowloris tool which was written in Perl.
PyLoris is a scriptable tool for testing a server’s vulnerability to connection exhaustion denial of service (DoS) attacks. PyLoris can utilize SOCKS proxies and SSL connections, and can target protocols such as HTTP, FTP, SMTP, IMAP, and Telnet.